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WHAT IS CLAIMED IS: 

1 1. A method for analyzing database security, said method 

2 comprising: 

3 connecting to one or more servers, wherein each server 

4 includes an instance, the instance including one 

5 or more databases; 

6 selecting one of the databases; 

7 identifying a user id, wherein the user id has access 

8 to the selected databases; 

U 9 retrieving a permitted user id list corresponding to 

M 10 the selected database; 

m 

1^ 11 determining whether the user id is included in the 

12 permitted user id list; 

ijl 13 reporting the user id in response to the determining. 

f 12. The method as described in claim 1 further comprising: 

f^l 2 retrieving a resolution corresponding to the 

3 determining; and 

P 4 including the resolution in the reporting. 

1 3. The method as described in claim 1 wherein the 

2 determining further comprises: 

3 identifying a violation message type wherein the 

4 violation message type is selected from the group 

5 consisting of a removed users check, a DB files 

6 and logs access check, and a DB backup files and 

7 logs access check. 

1 4. The method as described in claim 1 wherein the 

2 database is selected from a group consisting of a 

3 . database, a backup database, and a directory of 

4 databases. 
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1 5. The method as described in claim 1 wherein the 

2 connection is secure. 

1 6. The method as described in claim 1 wherein the 

2 permitted user id list is selected from the group 

3 consisting of a database instance owner, a sysadm 

4 group, and a sysmaint group. 

1 7. The method as described in claim 1 wherein the servers 

2 are on different operating platforms. 

M= 

^ 3 8. An information handling system comprising: 

4 one or more processors; 

5 a memory accessible by the processors; 

6 one or more nonvolatile storage devices accessible by 

7 the processors; 

s 

H 8 a database analysis tool to analyze database security, 

12 9 the database analysis tool including: 

10 means for connecting to one or more servers, 

o 

^ 11 wherein each server includes an instance, 

12 the instance including one or more 

13 databases; 

14 means for selecting one of the databases; 

15 means for identifying a user id, wherein the user 

16 id has access to the selected databases; 

17 means for retrieving a permitted user id list 

18 corresponding to the selected database; 

19 means for determining whether the user id is 

20 included in the permitted user id list; 

21 means for reporting the user id in response to 

22 the determining. 
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9. The information handling system as described in claim 
8 further comprising: 

retrieving a resolution corresponding to the 

determining; and 
including the resolution in the reporting. 

10. The information handling system as described in claim 
8 wherein the determining further comprises: 
identifying a violation message type wherein the 

violation message type is selected from the group 
consisting of a removed users check, a DB files 
and logs access check, and a DB backup files and 
logs access check. 

11. The information handling system as described in claim 
8 wherein the database is selected from a group 
consisting of a database, a backup database, and a 
directory of databases. 

12. The information handling system as described in claim 
8 wherein the permitted user id list is selected from 
the group consisting of a database instance owner, a 
sysadm group, and a sysmaint group. 

13. The information handling system as described in claim 
8 wherein the servers are on different operating 
platforms . 
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14. A computer program product stored in a computer 

operable media for analyzing database security, said 
computer program product comprising: 
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means for connecting to one or more servers, wherein 

each server includes an instance^ the instance 

including one or more databases; 
means for selecting one of the databases; 
means for identifying a user id, wherein the user id 

has access to the selected databases; 
means for retrieving a permitted user id list 

corresponding to the selected database; 
means for determining whether the user id is included 

in the permitted user id list; 
means for reporting the user id in response to the 

determining. 

15. The computer program product as described in claim 14 
further comprising : 

retrieving a resolution corresponding to the 

determining; and 
including the resolution in the reporting. 

16. The computer program product as described in claim 14 
wherein the determining further comprises: 
identifying a violation message type wherein the 

violation message type is selected from the group 
consisting of a removed users cheeky a DB files 
and logs access check, and a DB backup files and 
logs access check. 

17. The computer program product as described in claim 14 
wherein the database is selected from a group 
consisting of a database, a backup database, and a 
directory of databases- 
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1 18. The computer program product as described in claim 14 

2 wherein the connection is secure. 

1 19. The computer program product as described in claim 14 

2 wherein the permitted user id list is selected from 

3 the group consisting of a database instance owner, a 

4 sysadm group, and a sysmaint group. 

1 20. The computer program product as described in claim 14 

2 wherein the servers are on different operating 

3 platforms. 



